41 matches found
MiracleLinux 7 : icoutils-0.31.3-1.el7 (AXSA:2017-1531:01)
The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-1531:01 advisory. The icoutils are a set of programs for extracting and converting images in Microsoft Windows icon and cursor files. These files usually have the...
EUVD-2017-15077
Malware in sbrugna...
EUVD-2017-14314
Malware in sbrugna...
SUSE CVE-2017-5208
Integer overflow in the wrestool program in icoutils before 0.31.1 allows remote attackers to cause a denial of service memory corruption via a crafted executable, which triggers a denial of service application crash or the possibility of execution of arbitrary code...
SUSE CVE-2017-5332
The extractgroupiconcursorresource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service process crash and execute arbitrary code via a crafted executable...
SUSE CVE-2017-6009
An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decodeneresourceid" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a fail...
Huawei EulerOS: Security Advisory for icoutils (EulerOS-SA-2017-1059)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-5208
A vulnerability was found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in memory corruption leading to a crash or potential code execution...
CVE-2017-5208
Integer overflow in the wrestool program in icoutils before 0.31.1 allows remote attackers to cause a denial of service memory corruption via a crafted executable, which triggers a denial of service application crash or the possibility of execution of arbitrary code...
DEBIAN-CVE-2017-5208
Integer overflow in the wrestool program in icoutils before 0.31.1 allows remote attackers to cause a denial of service memory corruption via a crafted executable, which triggers a denial of service application crash or the possibility of execution of arbitrary code...
CVE-2017-5208
CVE-2017-5208 affects the icoutils wrestool tool. An integer overflow when parsing a crafted binary can cause memory corruption, leading to a denial of service or potentially arbitrary code execution. The issue exists in icoutils prior to 0.31.1. Remediation: upgrade to icoutils 0.31.1 or newer (...
CVE-2017-5208
Integer overflow in the wrestool program in icoutils before 0.31.1 allows remote attackers to cause a denial of service memory corruption via a crafted executable, which triggers a denial of service application crash or the possibility of execution of arbitrary code...
Virtuozzo 7 : icoutils (VZLSA-2017-0837)
An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
EulerOS 2.0 SP1 : icoutils (EulerOS-SA-2017-1089)
According to the versions of the icoutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by...
EulerOS 2.0 SP2 : icoutils (EulerOS-SA-2017-1059)
According to the versions of the icoutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by...
CentOS 7 : icoutils (CESA-2017:0837)
An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Scientific Linux Security Update : icoutils on SL7.x x86_64 (20170322)
Security Fixes : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in memory corruption leading to a crash or potential code execution. CVE-2017-5208, CVE-2017-5333, CVE-2017-6009 - A...
icoutils: Check_offset overflow on 64-bit systems
A vulnerability was found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in memory corruption leading to a crash or potential code execution...
icoutils: Integer overflow vulnerability in extract.c
A vulnerability was found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in memory corruption leading to a crash or potential code execution...
icoutils: Access to unallocated memory possible in extract.c
A vulnerability was found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by wrestool, could result in failure to allocate memory or an over-large memcpy operation, leading to a crash...